Tech & Society

No love lost: Zomato business unaffected by May data breach

India born Zomato announced they reached three million orders in a single month, still going strong months after suffering from a massive data leak in May.

Though a restaurant platform designed to consolidate restaurant reviews and facilitate online ordering didn’t sound like a prime target for a hack, they confirmed the breach on their blog on May 18. Zomato’s customer databases were hacked and the perpetrator accessed emails, names and hashed passwords for 17 million accounts. Though luckily payment information was not compromised.

Reportedly, the company was able to negotiate with the unnamed hacker to prevent misuse of the information, which was going to be sold on a dark web marketplace. The hacker was said to embrace ethical hacking standards and accepted to take down and destroy the data in exchange for Zomato’s sponsorship of a bug bounty program on Hackerone.

The breach involved at least 6.6 million email and password hash combinations. Password hashes are vulnerable to brute-force attacks that can potentially reveal the passwords. When considering that people tend to use the same password across many online services, data breaches can be devastating for affected users.

While Zomato has taken steps to fix the vulnerability that enabled the hacker to access their system, the problem has deeper roots. “Password-secured security solutions have quickly become outdated, leaving millions of businesses vulnerable to breaches”, said Leonardo Cooper, CEO of cyber security company Vault One. As new no-password technologies such as blockchain become the standard, security is expected to increase in both business and private environments.

Nonetheless, Zomato continues to attract attention in the ultra competitive foodtech sector. Since last year it has made great improvement toward profitability as it is getting more visitors and orders, decreasing cash burning, and surviving many other startups—all while staying away from new funding.

Back in May 2016, HSBC Securities & Capital Markets cut Zomato’s valuation by 50% in light of non-profitable operations in all 23 countries it operates in; today, Zomato makes a profit in 11 of them.

Even the most loved startups face setbacks they must overcome, and Zomato is no exception. While the shadow of a data leak remains a dark spot on their history, their sustained deliveries and will to survive show that users will forgive your sins—as long as you have a great product.

 

Daniel Sanchez

Hailing from the Caribbean coast of Colombia, Daniel is a writer and freelance translator with a background in biology. When not word-smithing, you will probably find him chasing frogs somewhere around the tropical belt.

Recent Posts

Ness Digital Engineering launches ATONIS: An AI-powered engineering workbench to accelerate product innovation

Bridging intelligence and engineering maturity for a digital-first world Today’s engineering teams face mounting pressure…

3 days ago

War by algorithm: As AI & robotics enter our defense budgets what will our battlefields look like?

As Artificial Intelligence (AI) and robotics redefine the battlefield, how should we feel about it?…

4 days ago

Funding alert: Tech startups that raked in moolah this month

The Tech Panda takes a look at recent funding events in the tech ecosystem, seeking…

6 days ago

AI & technology trends in the glass & manufacturing industry

Walk near the glass facade of any modern building in India today, and it would…

6 days ago

AI literacy for non?tech teachers: A guide to ‘AI for everyone’

Artificial Intelligence (AI) is no longer the exclusive domain of tech experts or computer scientists.…

1 week ago

Is AI assisting students or creating a future of cheaters?

Artificial Intelligence (AI) has been making moves to get into the classrooms. Will it make…

1 week ago